Peter Peltonen wrote:
> Okay, I've updated my subnet plan to look like this:
>
> net name netmask ip
>
> 128 dmz1 .224 .129 - .158
> 224 router .224 .225 - .224
>
> I've changed the network settings accordint to this plan. I made .158 the new
> dmz gateway. So my network looks like this:
>
> HDSL .254
> |
> |
> eth0 .253
> Linux-router
> eth1 .158
> |
> |
> eth0 .129
> Linux-client
>
> My router's routing table looks like this:
>
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use Iface
> 193.65.111.224 0.0.0.0 255.255.255.224 U 0 0 0 eth0
> 193.65.111.128 0.0.0.0 255.255.255.224 U 0 0 0 eth1
> 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
> 0.0.0.0 193.65.111.254 0.0.0.0 UG 0 0 0 eth0
>
> And my client's routing table looks like this:
>
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use Iface
> 193.65.111.129 0.0.0.0 255.255.255.255 UH 0 0 0 eth0
> 193.65.111.128 0.0.0.0 255.255.255.224 U 0 0 0 eth0
> 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
> 0.0.0.0 193.65.111.158 0.0.0.0 UG 0 0 0 eth0
>
> But still the same thing: Client can ping router but nothing else. Router can
> ping everything.
>
> I'm still doing something wrong...?
I have not really looked at the subneting but are you sure your isp is sending
packets to you router, or are they merely sending them in that direction from
theirs? I believe they need to know that all packets destined for your subnets
will go through your router so your router will know to get them and then
forward them. You might try tcpdump or ethereal to monitor the outgoing
interface and see if the packets are arriving on the wire looking for the final
machine or for the router as is correct, I believe.
Bret
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
